Warning: Permanently added '10.128.1.155' (ED25519) to the list of known hosts. 2024/06/09 20:47:58 ignoring optional flag "sandboxArg"="0" 2024/06/09 20:47:58 parsed 1 programs [ 41.863809][ T23] kauditd_printk_skb: 19 callbacks suppressed [ 41.863822][ T23] audit: type=1400 audit(1717966078.960:95): avc: denied { unlink } for pid=404 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" 2024/06/09 20:47:59 executed programs: 0 [ 41.946279][ T404] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 42.020270][ T411] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.027180][ T411] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.034708][ T411] device bridge_slave_0 entered promiscuous mode [ 42.041475][ T411] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.048521][ T411] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.055755][ T411] device bridge_slave_1 entered promiscuous mode [ 42.109450][ T411] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.116304][ T411] bridge0: port 2(bridge_slave_1) entered forwarding state [ 42.123908][ T411] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.130767][ T411] bridge0: port 1(bridge_slave_0) entered forwarding state [ 42.155451][ T24] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.162994][ T24] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.171143][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 42.178845][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 42.194074][ T366] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 42.202265][ T366] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.209129][ T366] bridge0: port 1(bridge_slave_0) entered forwarding state [ 42.216405][ T366] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 42.224803][ T366] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.231984][ T366] bridge0: port 2(bridge_slave_1) entered forwarding state [ 42.242693][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 42.252298][ T366] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 42.275408][ T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 42.284362][ T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 42.299925][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 42.314526][ T366] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 42.328537][ T355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 42.352896][ T23] audit: type=1400 audit(1717966079.440:96): avc: denied { mounton } for pid=416 comm="syz-executor.0" path="/root/syzkaller-testdir499599722/syzkaller.xRKK8S/0/file0" dev="sda1" ino=1939 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 42.381262][ T23] audit: type=1400 audit(1717966079.440:97): avc: denied { mount } for pid=416 comm="syz-executor.0" name="/" dev="tmpfs" ino=10236 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 42.404031][ T23] audit: type=1400 audit(1717966079.460:98): avc: denied { mounton } for pid=416 comm="syz-executor.0" path="/root/syzkaller-testdir499599722/syzkaller.xRKK8S/0/file0/file0" dev="tmpfs" ino=10237 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 42.404382][ T411] ------------[ cut here ]------------ [ 42.431942][ T23] audit: type=1400 audit(1717966079.470:99): avc: denied { unmount } for pid=411 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 42.436662][ T411] WARNING: CPU: 1 PID: 411 at fs/inode.c:302 drop_nlink+0xbb/0x100 [ 42.436679][ T411] Modules linked in: [ 42.456853][ T23] audit: type=1400 audit(1717966079.470:100): avc: denied { unmount } for pid=411 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 42.464067][ T411] CPU: 1 PID: 411 Comm: syz-executor.0 Not tainted 5.4.274-syzkaller-04909-gdd432c37afcd #0 [ 42.464073][ T411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 42.464110][ T411] RIP: 0010:drop_nlink+0xbb/0x100 [ 42.513275][ T411] Code: 49 8b 1e 48 8d bb d0 04 00 00 be 08 00 00 00 e8 7b 9a f2 ff f0 48 ff 83 d0 04 00 00 5b 41 5c 41 5e 41 5f 5d c3 e8 75 e2 c2 ff <0f> 0b eb 89 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c 62 ff ff ff 4c [ 42.533266][ T411] RSP: 0018:ffff8881d943fc68 EFLAGS: 00010293 [ 42.539346][ T411] RAX: ffffffff81a159ab RBX: 1ffff1103b2ab627 RCX: ffff8881f32f0000 [ 42.547236][ T411] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 42.555032][ T411] RBP: 0000000000000000 R08: ffffffff81a1592f R09: 0000000000000003 [ 42.563118][ T411] R10: ffffffffffffffff R11: dffffc0000000001 R12: ffff8881d955b138 [ 42.571121][ T411] R13: dffffc0000000000 R14: ffff8881d955b0f0 R15: dffffc0000000000 [ 42.579008][ T411] FS: 000055555639a480(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 42.588065][ T411] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 42.594591][ T411] CR2: 00005555563b3898 CR3: 00000001dd652000 CR4: 00000000003406a0 [ 42.602656][ T411] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 42.610471][ T411] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 42.618402][ T411] Call Trace: [ 42.621747][ T411] ? __warn+0x162/0x250 [ 42.625753][ T411] ? report_bug+0x3a1/0x4e0 [ 42.630294][ T411] ? drop_nlink+0xbb/0x100 [ 42.634572][ T411] ? drop_nlink+0xbb/0x100 [ 42.638820][ T411] ? do_invalid_op+0x6e/0x110 [ 42.643302][ T411] ? invalid_op+0x1e/0x30 [ 42.647467][ T411] ? drop_nlink+0x3f/0x100 [ 42.651724][ T411] ? drop_nlink+0xbb/0x100 [ 42.656050][ T411] ? drop_nlink+0xbb/0x100 [ 42.660299][ T411] ? drop_nlink+0xbb/0x100 [ 42.664557][ T411] shmem_rmdir+0x54/0x80 [ 42.668636][ T411] vfs_rmdir+0x285/0x3c0 [ 42.672723][ T411] incfs_kill_sb+0x105/0x200 [ 42.677146][ T411] deactivate_locked_super+0xa8/0x110 [ 42.682458][ T411] deactivate_super+0x1e2/0x2a0 [ 42.687187][ T411] ? vfs_submount+0xb0/0xb0 [ 42.691570][ T411] ? deactivate_locked_super+0x110/0x110 [ 42.697138][ T411] ? fast_dput+0x7a/0x280 [ 42.701293][ T411] cleanup_mnt+0x44e/0x500 [ 42.705543][ T411] task_work_run+0x140/0x170 [ 42.709961][ T411] exit_to_usermode_loop+0x190/0x1a0 [ 42.715203][ T411] prepare_exit_to_usermode+0x199/0x200 [ 42.720793][ T411] entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 42.726521][ T411] RIP: 0033:0x7fef77aa3197 [ 42.731030][ T411] Code: b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b0 ff ff ff f7 d8 64 89 02 b8 [ 42.750803][ T411] RSP: 002b:00007fff52e7d148 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 42.759166][ T411] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fef77aa3197 [ 42.766980][ T411] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff52e7d200 [ 42.774772][ T411] RBP: 00007fff52e7d200 R08: 0000000000000000 R09: 0000000000000000 [ 42.782598][ T411] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff52e7e2f0 [ 42.790421][ T411] R13: 00007fef77aed3b9 R14: 000000000000a555 R15: 0000000000000006 [ 42.798305][ T411] ---[ end trace f46ab9086143b363 ]--- [ 42.805750][ T411] ================================================================== [ 42.813646][ T411] BUG: KASAN: null-ptr-deref in ihold+0x1b/0x50 [ 42.819707][ T411] Write of size 4 at addr 0000000000000160 by task syz-executor.0/411 [ 42.827767][ T411] [ 42.829955][ T411] CPU: 1 PID: 411 Comm: syz-executor.0 Tainted: G W 5.4.274-syzkaller-04909-gdd432c37afcd #0 [ 42.841344][ T411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 42.851829][ T411] Call Trace: [ 42.854992][ T411] dump_stack+0x1d8/0x241 [ 42.859193][ T411] ? panic+0x89d/0x89d [ 42.863096][ T411] ? nf_ct_l4proto_log_invalid+0x258/0x258 [ 42.868749][ T411] ? _raw_spin_trylock_bh+0x190/0x190 [ 42.874035][ T411] ? shmem_destroy_inode+0x5/0x10 [ 42.879330][ T411] ? ihold+0x1b/0x50 [ 42.883088][ T411] __kasan_report+0xe9/0x120 [ 42.887625][ T411] ? ihold+0x1b/0x50 [ 42.891860][ T411] kasan_report+0x30/0x60 [ 42.896098][ T411] check_memory_region+0x272/0x280 [ 42.901084][ T411] ihold+0x1b/0x50 [ 42.904612][ T411] vfs_rmdir+0x1e0/0x3c0 [ 42.908680][ T411] incfs_kill_sb+0x105/0x200 [ 42.913321][ T411] deactivate_locked_super+0xa8/0x110 [ 42.918517][ T411] deactivate_super+0x1e2/0x2a0 [ 42.923188][ T411] ? vfs_submount+0xb0/0xb0 [ 42.927545][ T411] ? deactivate_locked_super+0x110/0x110 [ 42.933001][ T411] ? fast_dput+0x7a/0x280 [ 42.937172][ T411] cleanup_mnt+0x44e/0x500 [ 42.941513][ T411] task_work_run+0x140/0x170 [ 42.946029][ T411] exit_to_usermode_loop+0x190/0x1a0 [ 42.951240][ T411] prepare_exit_to_usermode+0x199/0x200 [ 42.956656][ T411] entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 42.962795][ T411] RIP: 0033:0x7fef77aa3197 [ 42.967115][ T411] Code: b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b0 ff ff ff f7 d8 64 89 02 b8 [ 42.986653][ T411] RSP: 002b:00007fff52e7d148 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 42.995402][ T411] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fef77aa3197 [ 43.003217][ T411] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff52e7d200 [ 43.011056][ T411] RBP: 00007fff52e7d200 R08: 0000000000000000 R09: 0000000000000000 [ 43.018837][ T411] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff52e7e2f0 [ 43.026741][ T411] R13: 00007fef77aed3b9 R14: 000000000000a555 R15: 0000000000000006 [ 43.034545][ T411] ================================================================== [ 43.042547][ T411] Disabling lock debugging due to kernel taint [ 43.050193][ T411] BUG: kernel NULL pointer dereference, address: 0000000000000160 [ 43.058077][ T411] #PF: supervisor write access in kernel mode [ 43.063990][ T411] #PF: error_code(0x0002) - not-present page [ 43.070241][ T411] PGD 1dd535067 P4D 1dd535067 PUD 0 [ 43.075341][ T411] Oops: 0002 [#1] PREEMPT SMP KASAN [ 43.080469][ T411] CPU: 1 PID: 411 Comm: syz-executor.0 Tainted: G B W 5.4.274-syzkaller-04909-gdd432c37afcd #0 [ 43.091842][ T411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024 [ 43.101899][ T411] RIP: 0010:ihold+0x20/0x50 [ 43.106305][ T411] Code: 0f 1f 84 00 00 00 00 00 66 90 55 53 48 89 fb e8 d6 da c2 ff 48 8d bb 60 01 00 00 be 04 00 00 00 e8 b5 92 f2 ff bd 01 00 00 00 0f c1 ab 60 01 00 00 ff c5 bf 02 00 00 00 89 ee e8 9a dd c2 ff [ 43.126158][ T411] RSP: 0018:ffff8881d943fca0 EFLAGS: 00010246 [ 43.132104][ T411] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff8881f32f0000 [ 43.140039][ T411] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00000000ffffffff [ 43.147776][ T411] RBP: 0000000000000001 R08: ffffffff813ae8a5 R09: 0000000000000003 [ 43.155800][ T411] R10: ffffffffffffffff R11: dffffc0000000001 R12: 0000000000000000 [ 43.163602][ T411] R13: dffffc0000000000 R14: ffff8881d95591b8 R15: 0000000000000000 [ 43.171520][ T411] FS: 000055555639a480(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 43.180362][ T411] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 43.186906][ T411] CR2: 0000000000000160 CR3: 00000001dd652000 CR4: 00000000003406a0 [ 43.194790][ T411] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 43.202621][ T411] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 43.210510][ T411] Call Trace: [ 43.213671][ T411] ? __die+0xb4/0x100 [ 43.217465][ T411] ? no_context+0xbda/0xe50 [ 43.221876][ T411] ? schedule_preempt_disabled+0x20/0x20 [ 43.227429][ T411] ? is_prefetch+0x4b0/0x4b0 [ 43.231875][ T411] ? ihold+0x1b/0x50 [ 43.235607][ T411] ? __do_page_fault+0xa7d/0xbb0 [ 43.240360][ T411] ? __bad_area_nosemaphore+0xc0/0x460 [ 43.245671][ T411] ? page_fault+0x2f/0x40 [ 43.249822][ T411] ? check_panic_on_warn+0x55/0xa0 [ 43.254770][ T411] ? ihold+0x20/0x50 [ 43.258667][ T411] vfs_rmdir+0x1e0/0x3c0 [ 43.262752][ T411] incfs_kill_sb+0x105/0x200 [ 43.267402][ T411] deactivate_locked_super+0xa8/0x110 [ 43.272747][ T411] deactivate_super+0x1e2/0x2a0 [ 43.277485][ T411] ? vfs_submount+0xb0/0xb0 [ 43.281911][ T411] ? deactivate_locked_super+0x110/0x110 [ 43.287499][ T411] ? fast_dput+0x7a/0x280 [ 43.291640][ T411] cleanup_mnt+0x44e/0x500 [ 43.296020][ T411] task_work_run+0x140/0x170 [ 43.300433][ T411] exit_to_usermode_loop+0x190/0x1a0 [ 43.305553][ T411] prepare_exit_to_usermode+0x199/0x200 [ 43.310921][ T411] entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 43.316763][ T411] RIP: 0033:0x7fef77aa3197 [ 43.321013][ T411] Code: b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b0 ff ff ff f7 d8 64 89 02 b8 [ 43.340544][ T411] RSP: 002b:00007fff52e7d148 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 43.348868][ T411] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fef77aa3197 [ 43.357127][ T411] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff52e7d200 [ 43.365013][ T411] RBP: 00007fff52e7d200 R08: 0000000000000000 R09: 0000000000000000 [ 43.373019][ T411] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff52e7e2f0 [ 43.380830][ T411] R13: 00007fef77aed3b9 R14: 000000000000a555 R15: 0000000000000006 [ 43.388926][ T411] Modules linked in: [ 43.392658][ T411] CR2: 0000000000000160 [ 43.396675][ T411] ---[ end trace f46ab9086143b364 ]--- [ 43.401955][ T411] RIP: 0010:ihold+0x20/0x50 [ 43.406291][ T411] Code: 0f 1f 84 00 00 00 00 00 66 90 55 53 48 89 fb e8 d6 da c2 ff 48 8d bb 60 01 00 00 be 04 00 00 00 e8 b5 92 f2 ff bd 01 00 00 00 0f c1 ab 60 01 00 00 ff c5 bf 02 00 00 00 89 ee e8 9a dd c2 ff [ 43.425737][ T411] RSP: 0018:ffff8881d943fca0 EFLAGS: 00010246 [ 43.431615][ T411] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff8881f32f0000 [ 43.439432][ T411] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00000000ffffffff [ 43.447399][ T411] RBP: 0000000000000001 R08: ffffffff813ae8a5 R09: 0000000000000003 [ 43.455163][ T411] R10: ffffffffffffffff R11: dffffc0000000001 R12: 0000000000000000 [ 43.462946][ T411] R13: dffffc0000000000 R14: ffff8881d95591b8 R15: 0000000000000000 [ 43.471063][ T411] FS: 000055555639a480(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 43.479828][ T411] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 43.486394][ T411] CR2: 0000000000000160 CR3: 00000001dd652000 CR4: 00000000003406a0 [ 43.494194][ T411] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 43.502028][ T411] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 43.509823][ T411] Kernel panic - not syncing: Fatal exception [ 43.516388][ T411] Kernel Offset: disabled [ 43.520523][ T411] Rebooting in 86400 seconds..